File _patchinfo of Package patchinfo.38397

<patchinfo incident="38397">
  <issue tracker="cve" id="2025-43963"/>
  <issue tracker="cve" id="2025-43964"/>
  <issue tracker="cve" id="2025-43962"/>
  <issue tracker="cve" id="2025-43961"/>
  <issue tracker="bnc" id="1241584">VUL-0: CVE-2025-43964: libraw: tag 0x412 processing in phase_one_correct  does not enforce minimum w0 and w1 values</issue>
  <issue tracker="bnc" id="1241585">VUL-0: CVE-2025-43962: libraw: out-of-bounds read when tag 0x412 processing in phase_one_correct function</issue>
  <issue tracker="bnc" id="1241642">VUL-0: CVE-2025-43963: libraw: out-of-buffer access</issue>
  <issue tracker="bnc" id="1241643">VUL-0: CVE-2025-43961: libraw: out-of-bounds read</issue>
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libraw</summary>
  <description>This update for libraw fixes the following issues:

- CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp (bsc#1241643)
- CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phase_one_correct function (bsc#1241585)
- CVE-2025-43963: Fixed out-of-buffer access during phase_one_correct in decoders/load_mfbacks.cpp (bsc#1241642)
- CVE-2025-43964: Fixed tag 0x412 processing in phase_one_correct  does not enforce minimum w0 and w1 values (bsc#1241584)
</description>
</patchinfo>